-
Notifications
You must be signed in to change notification settings - Fork 382
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Pull Request: Add a Module to See Previous Logins #484
Comments
Hi, this looks interesting. I would prefer having this as internal option, for example something like @ajanvrin take a look at this. That is something similar what you had in mind right? |
In my previous version of Crackmapexec, I included more functions, but I streamlined it to focus solely on https://github.com/quahac/CME-Module-info
|
Sounds good 👍 feel free to open up a PR so we can properly work on it |
In fact, this would really simplify the use of nxc. There are situations when one account has administrator rights on one of the hosts, but not on another. Currently, nxc does not allow you to separate one from the other, so you have to combine hosts into groups by credentials and run commands separately for each group (i.e. first for hosts with credentials -id 1, then on hosts with credentials -id 2, etc. For myself, I implemented this using bash, but it would be much more convenient if nxc selected credentials with administrator rights when authorizing on each host automatically. |
The current
NetExec
tool does not allow users to quickly check past connections and their access rights. It relies only on thenxcdb
or sqlite database files, likesmb.db
. Because of this limitation, users often have to try multiple login requests to find different login information, which can be time-consuming and inefficient.I suggest creating a new module called
Info
to provide a faster way to check past connections. I have a working solution:This module is designed to check the
smb.db
file for previously connected sessions. It verifies if the connection was established with System or Administrator rights when accessing the host.Example Usage
Script source:
https://github.com/quahac/Netexec-Module-Info
The text was updated successfully, but these errors were encountered: